CDPSvc allows DLL Loading via writable PATH directories

This article is about discovering vulnerabilities even in closed source software by applying fuzzing testing.

As promised in my previous post , I will show you how to exploit the “Printconfig” dll with a real world example. But what does Apple’s iPhone have to do with it?? Well, keep on r…

Confidential Consortium Framework. Contribute to microsoft/CCF development by creating an account on GitHub.

Passive sniffing tool for capturing and visualising WiFi location data disclosed by iOS devices - hubert3/iSniff-GPS

Port 8291 Scan Results

In this write-up, I will explain how I exploited a blind XSS in the backend portal of a program.

Say hello to Bottle Exploit Kit targeting Japan - @nao_sec

TikTok has been with us for a couple of years now but we haven’t seen people using it in their investigations much until now. The mobile…

Ditemukan : 2 Mei 2017

A VBA implementation of the RunPE technique or how to bypass application whitelisting. - itm4n/VBA-RunPE

Telerik UI for ASP.NET AJAX insecurely deserializes JSON objects resulting in arbitrary RCE. Learn how to patch and securely configure this software.

My write-up / walkthrough for Smasher2 from Hack The Box.

open-source jailbreaking tool for many iOS devices - axi0mX/ipwndfu

CVE-2019–17123

TL;DR – Found a technique to execute DLL files without being detected by autoruns.exe at logon. – Requires administrator rights and does not belong in userland. – Run this to Expl…

Exploiting type confusion bugs in latest JSC and escaping the sandbox